0b637af8c527fce45040d8198b5f1c28_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0b637af8c527fce45040d8198b5f1c28_JaffaCakes118
Size

656KB
MD5

0b637af8c527fce45040d8198b5f1c28
SHA1

2f663dca58c3a24145606ba227455e89857bdc9b
SHA256

43a00a8169169591980ee712afcb08fed0e8f91c838facf86402b1d375dc9028
SHA512

7f702f5fe567b18181b471438d6671d3022649298052f996cb4fdbd8f79f26b63a7d3342a6f2c69b633845f857f705271e2abc43b801675aa67b235365e97552
SSDEEP

12288:XA5UjXH/UVGHVKUGtq1mZMv8pKiK8NOX1uJ+ORJCyWpqbM4:XdrH/GGQk4MvviK89fRJCjpG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/xMqfnsbTjvL3BfW.exe

Files

0b637af8c527fce45040d8198b5f1c28_JaffaCakes118
.eml
- http://1qwbbjfb.r.eu-west-1.awstrack.me/L0/tel:%2B34900102801/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/TNpXieKfpq0oAhKP8ujHGnANeAU=238
- http://1qwbbjfb.r.eu-west-1.awstrack.me/L0/tel:%2B34913747368/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/bjOvOzqdmIu5T2916DqnGRLCXJc=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Fbbva.info%2Flinkedin-empresas/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/t--0h7jLD4mrPHhhF4tFeNfY07k=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Ftwitter.com%2Fbbvaempresas_es/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/f2D0GKDvPfuKEK6szS9x3aKkhZI=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Fwww.bbva.es%2Fsistema%2Fmeta%2Fseguridad%2Findex.jsp%3Fema=ema-201706-ET-AspectosSeguridad/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/0hdUAgk0y_5M04Qg80J11PnL4AU=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Fwww.bbva.es%2Fsistema%2Fredireccion-oficinas.jsp%3Fcid=eml:mem::spain-cast--pie_canales-cajeros-empresas-:-:::::::::/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/vhcD6pZgB7z20uX6KFR5QqenxJ8=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Fwww.bbva.es%2Fsistema%2Fredireccion.jsp%3Fdiren=canal-linea-empresas%26cid=eml:mem::spain-cast--pie_canales-banca_telefonica-empresas-:-:::::::::/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/b_ZBtZiz-1-Vy6saGcNR6_UpGGk=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Fwww.bbva.es%2Fsistema%2Fredireccion.jsp%3Fdiren=ficha-netcash%26cid=eml:mem::spain-cast--pie_canales-apps-empresas-:-:::::::::/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/-oWe950aB4EV_Nk_OpdmCBmzcnQ=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Fwww.bbva.es%2Fsistema%2Fredireccion.jsp%3Fdiren=home%26ema=ema-201706-ET-BBVAesLegal/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/ruQSG0Y-SSCGJrtp1HL7qyPXei8=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Fwww.bbva.es%2Fsistema%2Fredireccion.jsp%3Fdiren=home-empresas%26cid=eml:mem::spain-cast--pie_canales-home-empresas-:-:::::::::/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/4b-UEqVRmXUDcIKpQXwMcEiB11o=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Fwww.facebook.com%2Fbbvaenespana%2F/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/Zhxd_tKi3vyOjSqRhcUWYXNqo3o=238
- https://1qwbbjfb.r.eu-west-1.awstrack.me/L0/https:%2F%2Fwww.youtube.com%2Fuser%2FBBVAespana/1/0102017c33647bdc-989e5719-88e6-418a-aaa3-789842d2be85-000000/1vKOm_x9yVY4c87bp6nrnB9CePs=238
- Show all
Facturas Pagadas al Vencimiento.PDF .pdf (151K).rar
.rar
xMqfnsbTjvL3BfW.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 909KB - Virtual size: 908KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
email-html-2.txt
.html
email-plain-1.txt

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 909KB - Virtual size: 908KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 909KB - Virtual size: 908KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B